SUSE-SU-2026:1333-1

Details

This update for xorg-x11-server fixes the following issues:

CVE-2026-33999: XKB integer underflow in XkbSetCompatMap() (bsc#1260922).
CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom() (bsc#1260923).
CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence() (bsc#1260924).
CVE-2026-34002: XKB out-of-bounds read in CheckModifierMap() (bsc#1260925).
CVE-2026-34003: XKB buffer overflow in CheckKeyTypes() (bsc#1260926).

Affected Packages

xorg-x11-server

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4

Fixed in:

1.20.3-150400.38.68.1

xorg-x11-server-extra

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4

Fixed in:

1.20.3-150400.38.68.1

xorg-x11-server-sdk

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4

Fixed in:

1.20.3-150400.38.68.1

References

REPORT

https://bugzilla.suse.com/1260922

REPORT

https://bugzilla.suse.com/1260923

REPORT

https://bugzilla.suse.com/1260924

REPORT

https://bugzilla.suse.com/1260925

REPORT